How do I send spring csrf token from Postman rest client?

by

The Easiest way to do this consistently so you don’t have to get the token each time:

NOTE:you need to install PostMan Interceptor and activate it to have access to the browsers cookies

  1. Create a new environment so environment variables can be stored

enter image description here

  1. Create a login method with a test to store the XSRF cookie in an environment variable, in the test tab post this code

    //Replace XSFR-TOKEN with your cookie name
var xsrfCookie = postman.getResponseCookie("XSRF-TOKEN");
postman.setEnvironmentVariable("xsrf-token", xsrfCookie.value);

EDIT
For anyone using the 5.5.2 postman or later you will also have to decode the cookie, and they have also provided alternative ways to obtain cookies as @Sacapuces points out

pm.environment.set("xsrf-token", decodeURIComponent(pm.cookies.get("XSRF-TOKEN")))

Now you will have an environment variable with xsrf-token in it.

  1. Save your login method

  2. Create the new post you want to create and in the headers add your XSRF-Token-Header Key, and the environment variable in handle bars to access it{{}}

enter image description here

  1. Now before running your new request make sure you run your login, it will store the environment variable, and then when you run the actually request it will automatically append it.

More Related Contents:

  1. Spring MVC @PathVariable with dot (.) is getting truncated
  2. Spring Resttemplate exception handling
  3. With Spring can I make an optional path variable?
  4. Spring RestTemplate timeout
  5. How to set an “Accept:” header on Spring RestTemplate request?
  6. How to use OAuth2RestTemplate?
  7. Spring RestTemplate with paginated API
  8. Spring Security 3.2 CSRF support for multipart requests
  9. Spring CSRF token does not work, when the request to be sent is a multipart request
  10. Access Https Rest Service using Spring RestTemplate
  11. How to get access to HTTP header information in Spring MVC REST controller?
  12. Handling ambiguous handler methods mapped in REST application with Spring
  13. Encoded slash (%2F) with Spring RequestMapping path param gives HTTP 400
  14. Spring MVC @RestController and redirect
  15. How to access plain json body in Spring rest controller?
  16. Spring Security: mapping OAuth2 claims with roles to secure Resource Server endpoints
  17. How to mock Spring WebFlux WebClient?
  18. Spring Social Authentication Filter for Stateless REST Endpoints which use Facebook Token for authentication
  19. How to allow a User only access their own data in Spring Boot / Spring Security?
  20. Spring Boot SSL Client
  21. Spring MVC bean mapping to HTTP GET request parameters similar to @BeanParam
  22. With Spring Data REST, why is the @Version property becoming an ETag and not included in the representation?
  23. How to Solve 403 Error in Spring Boot Post Request
  24. SPRING REST: The request was rejected because no multipart boundary was found
  25. Spring/Rest @PathVariable character encoding
  26. BeanFactory vs ApplicationContext
  27. Why can’t we autowire static fields in spring?
  28. When use ResponseEntity and @RestController for Spring RESTful applications
  29. Java 8 Spring compatibility
  30. Programmatic access to properties created by property-placeholder

Leave a Comment